RudePanda
· Published 21/12/2025 17:42 · Modified 21/12/2025 17:42
· Source: AlienVault
Essential information
- Confidence
- 100/100
- Published
- 21/12/2025 17:42
- Modified
- 21/12/2025 17:42
- Updated at
- 21/12/2025 17:42
- Revoked
- No
- Author / Source
- AlienVault
- Resource level
- —
- Primary motivation
- —
- Related entities
- 1 reports, 20 attack patterns (mitre), 3 malware, 36 indicators
Description
No description.
Marking (TLP)
TLP:CLEAR
Related entities
Attack patterns, malware, vulnerabilities, indicators and other entities linked to this intrusion set.
Reports (1)
-
16 MITREs 3 Malwares 36 Observables 1 APT
Attack patterns (MITRE) (20)
-
T1078 usesValid Accounts MITRE
-
T1014 usesRootkit MITRE
-
T1105 usesIngress Tool Transfer MITRE
-
T1140 usesDeobfuscate/Decode Files or Information MITRE
-
T1190 usesExploit Public-Facing Application MITRE
-
T1218.011 usesRundll32 MITRE
-
T1573.002 usesAsymmetric Cryptography MITRE
-
T1112 usesModify Registry MITRE
-
T1070.001 usesClear Windows Event Logs MITRE
-
T1204.001 usesMalicious Link MITRE
-
T1505.003 usesWeb Shell MITRE
-
T1059.001 usesPowerShell MITRE
Malware (3)
-
HijackServer usesFamily
-
HijackDriverManager usesFamily
-
WingtbCLI usesFamily
Indicators (36)
-
665234a6627269ba0b3816a6a29ede4fc72d36f34978f5ba1410e63d968d3d62indicates -
a96e1643dedd472e5712282904110ee948592fab722dc87d8f1e7658d3d8449dindicates -
stix 100/100· Valid until 19/10/2026 · Source: AlienVault
-
fc16cb7949b0eb8f3ffa329bef753ee21440638c1ec0218c1e815ba49d7646bbindicates -
fseo88.comindicates -
7cc8b4206e87788b8403500f37bb8b5cfb71d3c26d49365ccc9c36b688c7428aindicates -
e6a9bf90accf17355a1f779d480a38838b2bbb2877cde095c7c139e041c50d71indicates -
a8498295ec3557f1bf680a432acf415abf108405063f44d78974a4f27c27dd20indicates -
83620389548516c74b40f9067ca20b7cc641a243c419d76ab2da87f8fd38e81cindicates -
82a1f8abffbd469e231eec5e0ac7e01eb6a83cbeb7e09eb8629bc5cc8ef12899indicates -
7a10207a430234b448f692a534cea16d400858c5fdda014c786fbf97127dce88indicates -
cseo88.comindicates